Designing Virtual Network Security Architectures Dave Shackleford
|
|
- Kory Neal
- 8 years ago
- Views:
Transcription
1 SESSION ID: CSV R03 Designing Virtual Network Security Architectures Dave Shackleford Sr. Faculty and Analyst
2 Introduction Much has been said about virtual networking and softwaredefined networking (SDN) in the past several years Most of the conversation has been focused on operations There are major impacts to network security, however Major SDN tools and vendor products have emerged Architectural frameworks for virtual and software networking have emerged, as well But where does security fit into all this? 2
3 NFV to SDN Network Functions Virtualization (NFV) decouples network functions from dedicated hardware devices Network services (routers, firewalls, load balancers, etc.) can now be hosted on virtual machines SDN is an architectural model that offers network virtualization and programmability SDN abstracts the network control plane from the data plane Some definitions are less focused on decoupling the planes, and more on APIs and integration 3
4 Example Projects/Products OpenFlow is a specification for handling and processing network traffic flows in a software defined manner OpenDaylight is a full implementation of SDN governed by the Linux Foundation Includes a full featured, open source controller Also supports OpenFlow and other SDN specifications Openstack Neutron is the SDN component of Openstack Commercial options from VMware (NSX) and Big Switch 4
5 Example Frameworks/Standards TOSCA Topology and Orchestration Specification for Cloud Applications YANG: Modeling language for configuration and state data with Netconf Netconf provides mechanisms to install, manipulate, and delete the configuration of network devices REST APIs are also common 5
6 New Architectural Models 6
7 Virtual Networking The progression of virtual networking looks a bit like this: Virtual switches (basic) Virtual switches (distributed) Parity with physical switches (Cisco Nexus 1000v, Open vswitch) NFV SDN Architecture models have shifted, as well 7
8 Old School: Separate Physical Trust Zones Systems are virtualized Network connections are still physically distinct Provides the most flexibility with existing network security tools
9 Consolidation: Virtually Separate Trust Zones Systems are virtualized Zones can be consolidated into one or more hypervisor hosts Network security devices and functions are still physically separate
10 More Consolidation on to SDN? All systems are virtualized Switches Systems Security devices and functions
11 Progress Today Many network security controls have been successfully virtualized Firewalls, Switches (traffic copy and flow export, ACLs, etc.), Routers, IDS/IPS, Load balancers, WAFs These all leverage the hypervisor in use, and still consolidate data and control planes (relative to function) Most public cloud consumers don t have true SDN available yet. 11
12 Hybrid Cloud Architecture Most hybrid cloud design uses: NFV Virtual appliances VPN connections 12
13 Hybrid Cloud Architecture Network Control: Layer 2: Very Little Layer 3: Some Layer 4 7: More Control 13
14 Moving from physical > virtual Evaluation criteria to consider: Cost Vendor viability Native integration with hypervisor platforms Management capabilities Performance impacts and scalability Architecture flexibility Virtualization specific features 14
15 Benefits and Drawbacks: NFV (and SDN) PROs Rapid configuration control implementation New central control point for control plane aspects of enterprise networking Traffic shaping and QoS may be more flexible, with improved DoS and DDoS detection/prevention CONs A new weak point to administer and audit Need to define policies and encryption controls for NFV/SDN Potential false positives for log management and SIEM in control traffic (and new log types) Availability!! 15
16 SDN: Reality versus Hype 16
17 SDN: Reality? First things first: SDN is real, it s growing, and security needs to adapt. That said: SDN will not replace everything. Not soon, anyway. Abstraction of network functions to a virtualized model is becoming more mature all the time This includes technology like VxLAN SDN protocols, frameworks, and controllers are maturing, too However, it s not all real for many organizations yet 17
18 Reality: API driven Networking The use of APIs to configure, control, and monitor networks exists and will grow Examples include OpenFlow, Netconf, OpenStack, etc. Some controllers are showing promise, too 18
19 Hype: Programming it all NOW. Shifting from hybrid physical+virtual networking functions and tools to a pure SDN architecture is highly impractical today for many More likely? Some policy application Some simple configuration Monitoring The APIs are there but turning the ship takes time. 19
20 SDN Architecture The SDN architectural model leverages both northbound and southbound APIs Northbound: Management and reporting tools Southbound: Control, configuration, and monitoring commands 20
21 SDN: Switches Switches accept commands from SDN controllers This is the data plane tier Switches are the enforcement point Packet forwarding Layers 2 7 ACLs NAC 21
22 SDN: Controllers Controllers are the brains of SDN Centralized Programmable Attackable Examples include: Mininet Floodlight Cisco APIC HP VAN SDN Controller VMware NSX Controller 22
23 SDN: Integration and Control At the application tier, northbound APIs: Allow monitoring of controllers and switches Commands to be issued to the control plane Management tools from Cisco, HP, Juniper, VMware, BigSwitch, etc. all sit at the application tier Focus on role based access and authentication/authorization 23
24 Security Changes with SDN Lots of security changes with SDN: Security policy is defined and enforced from applications >controllers >hardware or virtual devices Flow rules (policy) control when or if traffic goes through data plane devices Security isn t enforced by physical topology anymore Requires trust in SDN applications and controllers Network and virtualization teams must collaborate with security teams closely 24
25 Network Security Programming and Automation 25
26 Automation+Orchestration Redux There are differences between classic orchestration and SDN automation SDN!= Orchestration SDN!= Automation SDN leverages APIs that can be used for coordinated automation, however Anuta Networks NCX Nuage Networks Virtualized Services Platform 26
27 TOSCA Examples Node definition Policy Statements sans_vm: type: sans.openstack.nodes.server properties: server: { get_input: server } relationships: type: sans.openstack.server_connected_to_floating_ip target: sans_ip type: sans.relationships.depends_on target: All_ports_open policy_node: type: policy_node_type relationships: target: sans_vm type: sans.relationships.depends_on target: a_node type: sans.relationships.contained_in properties: nodes_to_monitor: sans_vm some_other_vm 27
28 Programming Network Security Numerous languages and frameworks can be used to implement orchestration: Ruby and Python Chef and Puppet Custom APIs and REST APIs Some will natively integrate with SDN Controllers 28
29 Example 1: Firewalls and Access Controls Simple Python code for firewall implementation Central rules and policy can be defined at the controller Pushed to switches 29
30 Example 1: Firewalls and Access Controls Cisco Open SDN Controller accepts REST call from Splunk Certain events trigger null route block entry for attacker IP 30
31 Example 2: Quarantine and IR Internal event at SIEM or other detection platform triggers SDN command to controller Controller sends a command to switch to change VLAN for VM or server 31
32 Example 3: DDoS Defense Packet attributes can be matched at gateway detection devices OpenFlow enabled controllers can trigger rules in load balancing platforms HP and F5 example shown 32
33 Example 3: DDoS Defense (Bohatei) Bohatei is a DDoS defense system using SDN presented at USENIX 2015 Uses packet identification, predictive modeling, and network orchestration 33
34 Tools and Such There are many tools to experiment with SDN today, although security is usually bolted on by you Mininet OpenFlow and OpenDaylight Floodlight OpenStack OpenContrail FlowVisor VMware NSX Cisco APIC 34
35 Wrapping Up 35
36 Moving toward SDN and Security Next week you should: Look at existing network vendors capabilities and explore a lab setup In the first three months following this presentation you should: Learn more about OpenFlow and related standards Discuss internal use cases for SDN, and security specifically within SDN Within six months you should: Align network update and architecture roadmaps with SDN capabilities and tools Consider how automation and orchestration of network functions might work in your environment 36
37 Resources for Security Pros Great resources on SDN and (some) security: sdn software defined networks/ brief sdn securityconsiderations in the data center ty_research.pdf 37
Software Defined Network (SDN)
Georg Ochs, Smart Cloud Orchestrator (gochs@de.ibm.com) Software Defined Network (SDN) University of Stuttgart Cloud Course Fall 2013 Agenda Introduction SDN Components Openstack and SDN Example Scenario
More information2013 ONS Tutorial 2: SDN Market Opportunities
2013 ONS Tutorial 2: SDN Market Opportunities SDN Vendor Landscape and User Readiness Jim Metzler, Ashton, Metzler & Associates Jim@ashtonmetzler.com April 15, 2013 1 1 Goals & Non-Goals Goals: Describe
More informationSDN/Virtualization and Cloud Computing
SDN/Virtualization and Cloud Computing Agenda Software Define Network (SDN) Virtualization Cloud Computing Software Defined Network (SDN) What is SDN? Traditional Network and Limitations Traditional Computer
More informationVirtualization, SDN and NFV
Virtualization, SDN and NFV HOW DO THEY FIT TOGETHER? Traditional networks lack the flexibility to keep pace with dynamic computing and storage needs of today s data centers. In order to implement changes,
More informationSOFTWARE-DEFINED NETWORKING AND OPENFLOW
SOFTWARE-DEFINED NETWORKING AND OPENFLOW Freddie Örnebjär TREX Workshop 2012 2012 Brocade Communications Systems, Inc. 2012/09/14 Software-Defined Networking (SDN): Fundamental Control
More informationSimplify IT. With Cisco Application Centric Infrastructure. Roberto Barrera rbarrera@grupo-dice.com. VERSION May, 2015
Simplify IT With Cisco Application Centric Infrastructure Roberto Barrera rbarrera@grupo-dice.com VERSION May, 2015 Content Understanding Software Definded Network (SDN) Why SDN? What is SDN and Its Benefits?
More informationUsing SouthBound APIs to build an SDN Solution. Dan Mihai Dumitriu Midokura Feb 5 th, 2014
Using SouthBound APIs to build an SDN Solution Dan Mihai Dumitriu Midokura Feb 5 th, 2014 Agenda About Midokura Drivers of SDN & Network Virtualization Adoption SDN Architectures Why OpenDaylight? Use
More informationTransform Your Business and Protect Your Cisco Nexus Investment While Adopting Cisco Application Centric Infrastructure
White Paper Transform Your Business and Protect Your Cisco Nexus Investment While Adopting Cisco Application Centric Infrastructure What You Will Learn The new Cisco Application Centric Infrastructure
More informationIntroduction to Software Defined Networking (SDN) and how it will change the inside of your DataCentre
Introduction to Software Defined Networking (SDN) and how it will change the inside of your DataCentre Wilfried van Haeren CTO Edgeworx Solutions Inc. www.edgeworx.solutions Topics Intro Edgeworx Past-Present-Future
More informationSoftware Defined Networks Virtualized networks & SDN
Software Defined Networks Virtualized networks & SDN Tony Smith Solution Architect HPN 2 What is Software Defined Networking Switch/Router MANAGEMENTPLANE Responsible for managing the device (CLI) CONTROLPLANE
More informationIntroduction to Software Defined Networking
Introduction to Software Defined Networking Introduction to SDN Ahmed Maged MENOG 15 Dubai April 2015 @amaged amaged@xegypt.org Agenda What is SDN and What it is not SDN Trends Getting Ready for SDN 2
More informationSOFTWARE DEFINED NETWORKING
SOFTWARE DEFINED NETWORKING Bringing Networks to the Cloud Brendan Hayes DIRECTOR, SDN MARKETING AGENDA Market trends and Juniper s SDN strategy Network virtualization evolution Juniper s SDN technology
More informationNetwork Security Demonstration - Snort based IDS Integration -
Network Security Demonstration - Snort based IDS Integration - Hyuk Lim (hlim@gist.ac.kr) with TJ Ha, CW Jeong, J Narantuya, JW Kim Wireless Communications and Networking Lab School of Information and
More informationWhite Paper. SDN 101: An Introduction to Software Defined Networking. citrix.com
SDN 101: An Introduction to Software Defined Networking citrix.com Over the last year, the hottest topics in networking have been software defined networking (SDN) and Network ization (NV). There is, however,
More informationSoftware Defined Environments
November 2015 Software Defined Environments 2015 Cloud Lecture, University of Stuttgart Jochen Breh, Director Architecture & Consulting Cognizant Global Technology Office Agenda Introduction New Requirements
More informationWhat is SDN? And Why Should I Care? Jim Metzler Vice President Ashton Metzler & Associates
What is SDN? And Why Should I Care? Jim Metzler Vice President Ashton Metzler & Associates 1 Goals of the Presentation 1. Define/describe SDN 2. Identify the drivers and inhibitors of SDN 3. Identify what
More informationHAWAII TECH TALK SDN. Paul Deakin Field Systems Engineer
HAWAII TECH TALK SDN Paul Deakin Field Systems Engineer SDN What Is It? SDN stand for Software Defined Networking SDN is a fancy term for: Using a controller to tell switches where to send packets SDN
More informationGroup-Based Policy for OpenStack
Group-Based Policy for OpenStack Introduction Over the past four years, OpenStack has grown from a simple open source project to a major community-based initiative including thousands of contributors in
More informationPalo Alto Networks. Security Models in the Software Defined Data Center
Palo Alto Networks Security Models in the Software Defined Data Center Christer Swartz Palo Alto Networks CCIE #2894 Network Overlay Boundaries & Security Traditionally, all Network Overlay or Tunneling
More informationDatacenter Networking. Joy ABOIM Consulting System Engineer
Datacenter Networking Joy ABOIM Consulting System Engineer Typical journey to a new Target Operating Model Standardise Vendors, architectures, devices (network, compute, storage) & their configurations
More informationMock RFI for Enterprise SDN Solutions
Mock RFI for Enterprise SDN Solutions Written By Sponsored By Table of Contents Background and Intended Use... 3 Introduction... 3 Definitions and Terminology... 7 The Solution Architecture... 10 The SDN
More informationSOFTWARE-DEFINED NETWORKS
THE PROMISE OF SOFTWARE-DEFINED NETWORKS SDNs offer organizations a flexible solution capable of reimagining the enterprise network. The IT community is abuzz with discussions about software-defined networks
More informationLeveraging SDN and NFV in the WAN
Leveraging SDN and NFV in the WAN Introduction Software Defined Networking (SDN) and Network Functions Virtualization (NFV) are two of the key components of the overall movement towards software defined
More informationSimplify IT. With Cisco Application Centric Infrastructure. Barry Huang bhuang@cisco.com. Nov 13, 2014
Simplify IT With Cisco Application Centric Infrastructure Barry Huang bhuang@cisco.com Nov 13, 2014 There are two approaches to Control Systems IMPERATIVE CONTROL DECLARATIVE CONTROL Baggage handlers follow
More informationDefining SDN. Overview of SDN Terminology & Concepts. Presented by: Shangxin Du, Cisco TAC Panelist: Pix Xu Jan 2014
Defining SDN Overview of SDN Terminology & Concepts Presented by: Shangxin Du, Cisco TAC Panelist: Pix Xu Jan 2014 2013 Cisco and/or its affiliates. All rights reserved. 2 2013 Cisco and/or its affiliates.
More informationSOFTWARE-DEFINED NETWORKING AND OPENFLOW
SOFTWARE-DEFINED NETWORKING AND OPENFLOW Eric Choi < echoi@brocade.com> Senior Manager, Service Provider Business Unit, APJ 2012 Brocade Communications Systems, Inc. EPF 7 2012/09/17 Software-Defined Networking
More informationSDN and NFV in the WAN
WHITE PAPER Hybrid Networking SDN and NFV in the WAN HOW THESE POWERFUL TECHNOLOGIES ARE DRIVING ENTERPRISE INNOVATION rev. 110615 Table of Contents Introduction 3 Software Defined Networking 3 Network
More informationQualifying SDN/OpenFlow Enabled Networks
Qualifying SDN/OpenFlow Enabled Networks Dean Lee Senior Director, Product Management Ixia Santa Clara, CA USA April-May 2014 1 Agenda SDN/NFV a new paradigm shift and challenges Benchmarking SDN enabled
More informationAn Open Approach to Enhancing Networking for OpenStack
An Open Approach to Enhancing Networking for OpenStack Robert McBride Marketing SDN/NFV @DigitalMcB rmcbride@brocade.com What are we going to talk about today? OpenStack and OpenDaylight better together
More informationSDN. What's Software Defined Networking? Angelo Capossele
SDN What's Software Defined Networking? Angelo Capossele Outline Introduction to SDN OpenFlow Network Functions Virtualization Some examples Opportunities Research problems Security Case study: LTE (Mini)Tutorial
More informationNetwork Virtualization and Software-defined Networking. Chris Wright and Thomas Graf Red Hat June 14, 2013
Network Virtualization and Software-defined Networking Chris Wright and Thomas Graf Red Hat June 14, 2013 Agenda Problem Statement Definitions Solutions She can't take much more of this, captain! Challenges
More informationOpen Source Network: Software-Defined Networking (SDN) and OpenFlow
Open Source Network: Software-Defined Networking (SDN) and OpenFlow Insop Song, Ericsson LinuxCon North America, Aug. 2012, San Diego CA Objectives Overview of OpenFlow Overview of Software Defined Networking
More informationSoftware Defined Networking (SDN) OpenFlow and OpenStack. Vivek Dasgupta Principal Software Maintenance Engineer Red Hat
Software Defined Networking (SDN) OpenFlow and OpenStack Vivek Dasgupta Principal Software Maintenance Engineer Red Hat CONTENTS Introduction SDN and components SDN Architecture, Components SDN Controller
More informationHow To Orchestrate The Clouddusing Network With Andn
ORCHESTRATING THE CLOUD USING SDN Joerg Ammon Systems Engineer Service Provider 2013-09-10 2013 Brocade Communications Systems, Inc. Company Proprietary Information 1 SDN Update -
More informationCisco and Canonical: Cisco Network Virtualization Solution for Ubuntu OpenStack
Solution Overview Cisco and Canonical: Cisco Network Virtualization Solution for Ubuntu OpenStack What You Will Learn Cisco and Canonical extend the network virtualization offered by the Cisco Nexus 1000V
More informationSpotlight On Backbone Technologies
Spotlight On Backbone Technologies Shawn Stevens Technical Lead, Data Center Technologies CCIE #4618 shawn.stevens@cdw.com CDW.com/network 800.800.4239 Agenda Overview of Software-Defined Networking (SDN)
More informationJUNIPER. One network for all demands MICHAEL FRITZ CEE PARTNER MANAGER. 1 Copyright 2010 Juniper Networks, Inc. www.juniper.net
JUNIPER One network for all demands MICHAEL FRITZ CEE PARTNER MANAGER 1 Copyright 2010 Juniper Networks, Inc. www.juniper.net 2-3-7: JUNIPER S BUSINESS STRATEGY 2 Customer Segments 3 Businesses Service
More informationSoftware defined networking. Your path to an agile hybrid cloud network
Software defined networking Your path to an agile hybrid cloud network Is your enterprise network ready for the latest business and consumer trends? Cloud How easily can your users connect to cloud resources?
More informationTesting Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES
Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES Table of Contents Introduction... 1 SDN - An Overview... 2 SDN: Solution Layers and its Key Requirements to be validated...
More informationThe Road to SDN: Software-Based Networking and Security from Brocade
WHITE PAPER www.brocade.com SOFTWARE NETWORKING The Road to SDN: Software-Based Networking and Security from Brocade Software-Defined Networking (SDN) presents a new approach to rapidly introducing network
More informationSoftware Defined Networking (SDN) Solutions, Market Opportunities and Forecast 2015-2020
Brochure More information from http://www.researchandmarkets.com/reports/3082065/ Software Defined Networking (SDN) Solutions, Market Opportunities and Forecast 2015-2020 Description: Software Defined
More informationVIRTUALIZED SERVICES PLATFORM Software Defined Networking for enterprises and service providers
VIRTUALIZED SERVICES PLATFORM Software Defined Networking for enterprises and service providers Why it s unique The Nuage Networks VSP is the only enterprise and service provider-grade SDN platform that:
More informationBuilding an Open, Adaptive & Responsive Data Center using OpenDaylight
Building an Open, Adaptive & Responsive Data Center using OpenDaylight Vijoy Pandey, IBM 04 th February 2014 Email: vijoy.pandey@gmail.com Twitter: @vijoy Agenda Where does ODP (& SDN) fit in the bigger
More informationData Center Virtualization and Cloud QA Expertise
Data Center Virtualization and Cloud QA Expertise Highlights Broad Functional QA Experience Deep understanding of Switching and Routing Protocols Strong hands on experience in multiple hyper-visors like
More informationSDN AND SECURITY: Why Take Over the Hosts When You Can Take Over the Network
SDN AND SECURITY: Why Take Over the s When You Can Take Over the Network SESSION ID: TECH0R03 Robert M. Hinden Check Point Fellow Check Point Software What are the SDN Security Challenges? Vulnerability
More informationSDN CONTROLLER. Emil Gągała. PLNOG, 30.09.2013, Kraków
SDN CONTROLLER IN VIRTUAL DATA CENTER Emil Gągała PLNOG, 30.09.2013, Kraków INSTEAD OF AGENDA 2 Copyright 2013 Juniper Networks, Inc. www.juniper.net ACKLOWLEDGEMENTS Many thanks to Bruno Rijsman for his
More informationNetwork Virtualization
Network Virtualization What is Network Virtualization? Abstraction of the physical network Support for multiple logical networks running on a common shared physical substrate A container of network services
More informationNetwork Virtualization for the Enterprise Data Center. Guido Appenzeller Open Networking Summit October 2011
Network Virtualization for the Enterprise Data Center Guido Appenzeller Open Networking Summit October 2011 THE ENTERPRISE DATA CENTER! Major Trends change Enterprise Data Center Networking Trends in the
More informationSDN in CloudStack. Tuesday, October 15, 13
SDN in CloudStack About me» Hugo Trippaers Email: htrippaers@schubergphilis.com Twitter: @Spark404 Freenode: Spark404» http://www.schubergphilis.com CloudStack networking - the five minute version» CloudStack
More informationA Presentation at DGI 2014 Government Cloud Computing and Data Center Conference & Expo, Washington, DC. September 18, 2014.
A Presentation at DGI 2014 Government Cloud Computing and Data Center Conference & Expo, Washington, DC September 18, 2014 Charles Sun www.linkedin.com/in/charlessun @CharlesSun_ 1 What is SDN? Benefits
More informationSoftware Defined Networking A quantum leap for Devops?
Software Defined Networking A quantum leap for Devops? TNG Technology Consulting GmbH, http://www.tngtech.com/ Networking is bottleneck in today s devops Agile software development and devops is increasing
More informationSDN PARTNER INTEGRATION: SANDVINE
SDN PARTNER INTEGRATION: SANDVINE SDN PARTNERSHIPS SSD STRATEGY & MARKETING SERVICE PROVIDER CHALLENGES TIME TO SERVICE PRODUCT EVOLUTION OVER THE TOP THREAT NETWORK TO CLOUD B/OSS AGILITY Lengthy service
More informationOutline. Why Neutron? What is Neutron? API Abstractions Plugin Architecture
OpenStack Neutron Outline Why Neutron? What is Neutron? API Abstractions Plugin Architecture Why Neutron? Networks for Enterprise Applications are Complex. Image from windowssecurity.com Why Neutron? Reason
More informationBRINGING NETWORKS TO THE CLOUD ERA
BRINGING NETWORKS TO THE CLOUD ERA SDN enables new business models Aruna Ravichandran VICE PRESIDENT, MARKETING AND STRATEGY ARAVICHANDRAN@JUNIPER.NET SOFTWARE DEFINED NETWORKING (SDN), JUNIPER NETWORKS
More informationBrocade SDN 2015 NFV
Brocade 2015 SDN NFV BROCADE IP Ethernet SDN! SDN illustration 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. INTERNAL USE ONLY 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. INTERNAL USE ONLY Brocade ICX (campus)
More informationVirtualized Network Services SDN solution for service providers
Virtualized Network Services SDN solution for service providers Nuage Networks Virtualized Network Services (VNS) is a fresh approach to business networking that seamlessly links your enterprise customers
More informationRIDE THE SDN AND CLOUD WAVE WITH CONTRAIL
RIDE THE SDN AND CLOUD WAVE WITH CONTRAIL Pascal Geenens CONSULTING ENGINEER, JUNIPER NETWORKS pgeenens@juniper.net BUSINESS AGILITY Need to create and deliver new revenue opportunities faster Services
More informationMay 13-14, 2015. Copyright 2015 Open Networking User Group. All Rights Reserved Confiden@al Not For Distribu@on
May 13-14, 2015 Virtual Network Overlays Working Group Follow up from last ONUG use case and fire side discussions ONUG users wanted to see formalized feedback ONUG users wanted to see progression in use
More informationSoftware Defined Networks Four Years Later. Quo Vadis, SDN? Ivan Pepelnjak (ip@ipspace.net) Network Architect. ipspace.net AG
Software Defined Networks Four Years Later Quo Vadis, SDN? Ivan Pepelnjak (ip@ipspace.net) Network Architect ipspace.net AG Who is Ivan Pepelnjak (@ioshints) Past Kernel programmer, network OS and web
More informationAutomating Network Security
Automating Network Security Ivan Pepelnjak (ip@ipspace.net) Network Architect ipspace.net AG Who is Ivan Pepelnjak (@ioshints) Past Kernel programmer, network OS and web developer Sysadmin, database admin,
More informationBusiness Case for Open Data Center Architecture in Enterprise Private Cloud
Business Case for Open Data Center Architecture in Enterprise Private Cloud Executive Summary Enterprise IT organizations that align themselves with their enterprise s overall goals help the organization
More informationSDN Applications in Today s Data Center
SDN Applications in Today s Data Center Harry Petty Director Data Center & Cloud Networking Cisco Systems, Inc. Santa Clara, CA USA October 2013 1 Customer Insights: Research/ Academia OpenFlow/SDN components
More informationPLUMgrid Open Networking Suite Service Insertion Architecture
White Paper PLUMgrid Open Networking Suite Service Insertion Architecture Introduction A rapid increase in the use of cloud services across the globe require networks to be adaptable and flexible. PLUMgrid
More informationSoftware Networking & The New IP. A Technical Perspective
Software Networking & The New IP A Technical Perspective The New IP Architecture for the 3 rd Platform SCALE ARCH COMPUTE NETWORK % of IT Spend 14 18 Social Billions/ Trillions Open Virtualized SW-driven
More informationSDN Architecture and Service Trend
2013 SDN 高 峰 論 壇 SDN Architecture and Service Trend Dr. Yu-Huang Chu Broadband Network Lab Chunghwa Telecom Co., Ltd., Taiwan 10/09/13 1 Outlines SDN & NFV introduction Network Architecture Trend SDN Services
More informationSoftware Defined Networking - a new approach to network design and operation. Paul Horrocks Pre-Sales Strategist 8 th November 2012
Software Defined Networking - a new approach to network design and operation Paul Horrocks Pre-Sales Strategist 8 th November 2012 Agenda What is Software Defined Networking What is the value of Software
More informationSurviving the SDN Wars. Curt Beckmann Chair of Forwarding Abstractions WG, ONF and EMEA CTO
Surviving the SDN Wars Curt Beckmann Chair of Forwarding Abstractions WG, ONF and EMEA CTO 2014 Sequence Defining SDN and NFV Last 4 years Last 6 months What happens next for SDN? Defining SDN and NFV
More informationCisco and Red Hat: Application Centric Infrastructure Integration with OpenStack
Cisco and Red Hat: Application Centric Infrastructure Integration with OpenStack Cisco and Red Hat Extend the Cisco ACI Policy Framework to Red Hat Enterprise Linux OpenStack Platform Enabled Environments
More informationCS244 Lecture 5 Architecture and Principles
CS244 Lecture 5 Architecture and Principles Network Virtualiza/on in Mul/- tenant Datacenters, NSDI 2014. Guido Appenzeller Background Why is SDN Happening? CLOSED & PROPRIETARY NETWORKING EQUIPMENT Vertically
More informationBranches as Nimble as the Cloud: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY
Branches as Nimble as the Cloud: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY The principles of cloud computing are transforming the delivery of information services
More informationHow To Write A Network Plan In Openflow V1.3.3 (For A Test)
OpenFlowand IPv6 Two great tastes that taste great together! Scott Hogg, CTO GTRI Chair Emeritus RMv6TF Infoblox IPv6 COE Today s Outline Software-Defined Networking Background Introduction to OpenFlow
More informationCisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems
Cisco Prime Network Services Controller Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems Agenda Cloud Networking Challenges Prime Network Services Controller L4-7 Services Solutions
More informationA Coordinated. Enterprise Networks Software Defined. and Application Fluent Programmable Networks
A Coordinated Virtual Infrastructure for SDN in Enterprise Networks Software Defined Networking (SDN), OpenFlow and Application Fluent Programmable Networks Strategic White Paper Increasing agility and
More informationTrusting SDN. Brett Sovereign Trusted Systems Research National Security Agency 28 October, 2015
Trusting SDN Brett Sovereign Trusted Systems Research National Security Agency 28 October, 2015 Who I am 18 years experience in Cryptography, Computer and Network Security Currently work at Trust Mechanisms,
More informationSecurity Challenges & Opportunities in Software Defined Networks (SDN)
Security Challenges & Opportunities in Software Defined Networks (SDN) June 30 th, 2015 SEC2 2015 Premier atelier sur la sécurité dans les Clouds Nizar KHEIR Cyber Security Researcher Orange Labs Products
More informationOrchestrating the next generation data center
Customer Driven Innovation A10 Networks Orchestrating the next generation data center WHD 2014 Do not distribute/edit/copy without the written consent of A10 Networks 2 About A10 3 Customer Driven Innovation
More informationVirtualized Network Services SDN solution for enterprises
Virtualized Network Services SDN solution for enterprises Nuage Networks Virtualized Network Services (VNS) is a fresh approach to business networking that seamlessly links your enterprise s locations
More informationWhite Paper. Juniper Networks. Enabling Businesses to Deploy Virtualized Data Center Environments. Copyright 2013, Juniper Networks, Inc.
White Paper Juniper Networks Solutions for VMware NSX Enabling Businesses to Deploy Virtualized Data Center Environments Copyright 2013, Juniper Networks, Inc. 1 Table of Contents Executive Summary...3
More informationVirtualization and Cloud: Orchestration, Automation, and Security Gaps
Virtualization and Cloud: Orchestration, Automation, and Security Gaps SESSION ID: CSV-R02 Dave Shackleford Founder & Principal Consultant Voodoo Security @daveshackleford Introduction Private cloud implementations
More informationCENTER I S Y O U R D ATA
I S Y O U R D ATA CENTER R E A DY F O R S D N? C R I T I C A L D ATA C E N T E R C O N S I D E R AT I O N S FOR SOFT WARE-DEFINED NET WORKING Data center operators are being challenged to be more agile
More informationTowards Smart and Intelligent SDN Controller
Towards Smart and Intelligent SDN Controller - Through the Generic, Extensible, and Elastic Time Series Data Repository (TSDR) YuLing Chen, Dell Inc. Rajesh Narayanan, Dell Inc. Sharon Aicler, Cisco Systems
More informationEnabling Application Aware Networks The Next Generation Data Centre with Citrix NetScaler & Cisco Nexus. Ralph W. Lorkins Lead Systems Engineer
Enabling Application Aware Networks The Next Generation Data Centre with Citrix NetScaler & Cisco Nexus Ralph W. Lorkins Lead Systems Engineer Orchestration and virtualization Automation and orchestration
More informationUnderstanding Cisco Cloud Fundamentals CLDFND v1.0; 5 Days; Instructor-led
Understanding Cisco Cloud Fundamentals CLDFND v1.0; 5 Days; Instructor-led Course Description Understanding Cisco Cloud Fundamentals (CLDFND) v1.0 is a five-day instructor-led training course that is designed
More informationSDN_CDN Documentation
SDN_CDN Documentation Release 0.1.1 introom9 October 27, 2015 Contents 1 What s it about 1 2 Get the code 3 3 Contents: 5 3.1 Overview................................................. 5 3.2 sdn_module................................................
More informationSDN Software Defined Networks
There is nothing more important than our customers SDN Software Defined Networks A deployable approach for the Enterprise 2012 Enterasys Networks, Inc. All rights reserved SDN Overview What is SDN? Loosely
More informationOpen Source Networking for Cloud Data Centers
Open Source Networking for Cloud Data Centers Gaetano Borgione Distinguished Engineer @ PLUMgrid April 2015 1 Agenda Open Source Clouds with OpenStack Building Blocks of Cloud Networking Tenant Networks
More informationEthernet-based Software Defined Network (SDN)
Ethernet-based Software Defined Network (SDN) Tzi-cker Chiueh Cloud Computing Research Center for Mobile Applications (CCMA), ITRI 雲 端 運 算 行 動 應 用 研 究 中 心 1 Cloud Data Center Architecture Physical Server
More informationIT Infrastructure Services. White Paper. Utilizing Software Defined Network to Ensure Agility in IT Service Delivery
IT Infrastructure Services White Paper Utilizing Software Defined Network to Ensure Agility in IT Service Delivery About the Author Siddhesh Rane Siddhesh Rane is a Technical Architect and part of the
More informationNetzwerkvirtualisierung? Aber mit Sicherheit!
Netzwerkvirtualisierung? Aber mit Sicherheit! Markus Schönberger Advisory Technology Consultant Trend Micro Stephan Bohnengel Sr. Network Virtualization SE VMware Agenda Background and Basic Introduction
More informationSDN, NFV & Future Technologies. Chris Thompson Director of Product Management, Cloud Connectivity Solutions
SDN, NFV & Future Technologies Chris Thompson Director of Product Management, Cloud Connectivity Solutions Agenda SDN & NFV projections Terminology and protocols Overview of SDN, NFV and NV CPE Evolution
More informationUse Case Brief CLOUD MANAGEMENT SOFTWARE AUTOMATION
Use Case Brief CLOUD MANAGEMENT SOFTWARE AUTOMATION Cloud Management Software can coordinate and automate server, network, and storage operations within the modern datacenter. This brief describes how
More informationEthernet-based Software Defined Network (SDN) Cloud Computing Research Center for Mobile Applications (CCMA), ITRI 雲 端 運 算 行 動 應 用 研 究 中 心
Ethernet-based Software Defined Network (SDN) Cloud Computing Research Center for Mobile Applications (CCMA), ITRI 雲 端 運 算 行 動 應 用 研 究 中 心 1 SDN Introduction Decoupling of control plane from data plane
More informationBring your virtualized networking stack to the next level
Bring your virtualized networking stack to the next level Mike Kolesnik, mkolesni@redhat.com Senior Software Engineer, Red-Hat FOSDEM February 2014 1/42 Agenda ovirt network configuration Neutron overview
More informationBringing the Cloud to the Enterprise Branch and WAN: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY
Bringing the Cloud to the Enterprise Branch and WAN: Unleashing Agility with Nuage Networks Virtualized Network Services EXECUTIVE SUMMARY The principles of cloud computing are transforming the information
More informationBuilding Scalable Multi-Tenant Cloud Networks with OpenFlow and OpenStack
Building Scalable Multi-Tenant Cloud Networks with OpenFlow and OpenStack Dave Tucker Hewlett-Packard April 2013 1 About Me Dave Tucker WW Technical Marketing HP Networking dave.j.tucker@hp.com Twitter:
More informationUnderneath OpenStack Quantum: Software Defined Networking with Open vswitch
Underneath OpenStack Quantum: Software Defined Networking with Open vswitch Principal Software Engineer Red Hat, Inc. April 24, 2013 1 Part One Why Open vswitch? Open vswitch enables Linux to become part
More informationSDN-NFV Open Source. Landscape, Scaling, Use-Cases Sharon Barkai Cofounder, ConteXtream. Santa Clara, CA USA April 2015
SDN-NFV Open Source Landscape, Scaling, Use-Cases Sharon Barkai Cofounder, ConteXtream Santa Clara, CA USA April 2015 1 Agenda SDN-NFV Open Source Landscape and Tiers SDN Open Source Tier for Scalability
More informationEmerging Software Defined Networking & Open APIs Ecosystem
Emerging Software Defined Networking & Open APIs Ecosystem VISIT SNE STUDENTS, 18 MAART 2015 Ronald van der Pol Ronald.vanderPol@surfnet.nl Content Emerging open hardware & open APIs in networking Software
More informationOpenDaylight Project Proposal Dynamic Flow Management
OpenDaylight Project Proposal Dynamic Flow Management Ram (Ramki) Krishnan, Varma Bhupatiraju et al. (Brocade Communications) Sriganesh Kini et al. (Ericsson) Debo~ Dutta, Yathiraj Udupi (Cisco) 1 Table
More information